SMTP Enumeration:

Raghav
3 min readSep 29, 2021

--

SMTP stands for Simple Mail Transfer Protocol. SMTP is a set of communication guidelines that allow software to transmit an electronic mail over the internet is called Simple Mail Transfer Protocol. It is a program used for sending messages to other computer users based on e-mail addresses.

for more Blog articles and Training Sessions click Here

smtp-ntlm-info.nse

This script enumerates information from remote SMTP services with NTLM authentication enabled. Sending a SMTP NTLM authentication request with null credentials will cause the remote service to respond with a NTLMSSP message disclosing information to include NetBIOS, DNS, and OS build version.

script: sudo nmap — script smtp-ntlm-info <target>

smtp-enum-users.nse

Attempts to enumerate the users on a SMTP server by issuing the VRFY, EXPN or RCPT TO commands. The goal of this script is to discover all the user accounts in the remote system.

script: sudo nmap — script smtp-enum-users <target>

smtp-brute.nse

Performs brute force password auditing against SMTP servers using either LOGIN, PLAIN, CRAM-MD5, DIGEST-MD5 or NTLM authentication.

script: sudo nmap — script smtp-brute <target>

smtp-commands.nse

Attempts to use EHLO and HELP to gather the Extended commands supported by an SMTP server.

script: sudo nmap — script smtp-commnads <target>

smtp-strangeport.nse

Checks if SMTP is running on a non-standard port. This may indicate that crackers or script kiddies have set up a backdoor on the system to send spam or control the machine.

script: sudo nmap — script smtp-strangeport <target>

for more Blog articles and Training Sessions click Here

--

--

Raghav
Raghav

No responses yet